PT-2021-9511 · Psp Fw+1 · Psp Fw+1

Cfir Cohen

Published

2021-11-16

Updated

2022-05-12

CVE-2020-12951

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ASP firmware (affected versions not specified) PSP FW (affected versions not specified)

Description A race condition issue exists that could allow less privileged x86 code to perform SMM (System Management Mode) operations. This issue affects both ASP and PSP firmware, potentially allowing unauthorized access to sensitive operations.

Recommendations For ASP firmware, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For PSP FW, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2020-12951

Affected Products

Asp

Psp Fw

PT-2021-9511 · Psp Fw+1 · Psp Fw+1

CVE-2020-12951

Weakness Enumeration

Related Identifiers

Affected Products

References · 4